Phishing
Technology
Ghost CMS SQL injection exploited in coordinated ClickFix campaign across 700+ sites
Universities and major platforms compromised via three-month-old unpatched vulnerability enabling malicious code injection and credential theft.
Technology
EvilTokens Phishing Service Bypasses MFA at 340+ Microsoft 365 Organizations
A $500/month subscription service has weaponized OAuth device code flows, rendering enterprise multi-factor authentication ineffective against credential theft.
AI
The AI Phishing Industrial Complex: How Cybercriminals Weaponized Automation at Scale
Deepfake CEOs, voice-cloned executives, and LLM-generated emails are driving a 3,000% surge in AI-powered fraud, costing businesses $40 billion by 2027.